Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Dof9sVIlzfyNB2_Z1wN_3Zeb2GQ.roa
File: Dof9sVIlzfyNB2_Z1wN_3Zeb2GQ.roa (raw, json)
Hash identifier: zE2LkY/kknzOlXTlKh4l5qyQzaP1oI+rpmceX4kza/4=
Subject key identifier: 0E:87:FD:B1:52:25:CD:FC:8D:07:6F:D9:D7:03:7F:DD:97:9B:D8:64
Certificate issuer: /CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Certificate serial: 0186DAC73724CFE9974B6FA498DE7728EDCB
Authority key identifier: 67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Dof9sVIlzfyNB2_Z1wN_3Zeb2GQ.roa
Signing time: Mon 13 Mar 2023 11:42:14 +0000
ROA not before: Mon 13 Mar 2023 11:42:14 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 48737
IP address blocks: 93.188.132.0/24 maxlen: 24
93.188.135.0/24 maxlen: 24
163.171.215.0/24 maxlen: 24
163.171.216.0/24 maxlen: 24
163.171.252.0/24 maxlen: 24
Validation: Failed, certificate revoked on Mon 01 Jan 2024 16:30:01 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:86:da:c7:37:24:cf:e9:97:4b:6f:a4:98:de:77:28:ed:cb
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=67b5b02dc401666ee045ab90cc88817fe09d706a
Validity
Not Before: Mar 13 11:42:14 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=0e87fdb15225cdfc8d076fd9d7037fdd979bd864
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:88:80:89:7d:81:73:fc:41:76:58:99:17:cf:76:
e2:3f:6e:36:b5:5e:5c:57:f4:6d:e8:cc:a7:3c:50:
a1:ad:43:6e:36:bf:33:19:ac:90:a0:3a:69:06:3f:
1a:27:f7:be:d1:d2:86:4d:a4:5a:8b:cd:4d:05:12:
74:60:e6:f0:2a:2f:c5:38:7d:b7:5f:a6:06:08:34:
ab:82:eb:04:36:93:60:6c:44:71:62:93:fe:d5:bb:
34:9d:e0:ac:fb:fe:cb:1d:e2:2a:45:11:5c:4a:a9:
c4:80:9a:6a:44:07:57:12:d7:1b:8f:d3:46:26:e8:
f7:6b:62:ba:73:9a:ee:85:f1:d7:a7:70:8e:35:36:
b5:d1:0c:d0:0e:a5:14:64:3b:01:52:ff:6f:3d:a3:
b4:5e:51:e1:f9:ce:63:c6:5a:ee:b2:a1:5f:36:b4:
2a:ac:a0:07:bd:e9:2a:cd:9c:1a:57:2c:d3:1e:d6:
43:11:5f:a7:e5:83:64:b1:82:7b:a9:1e:c4:5d:4c:
f3:d0:23:74:c3:22:d8:aa:8c:71:21:27:db:10:ef:
31:bf:fa:0f:a2:f9:a0:5a:30:06:79:97:85:81:1a:
ca:ed:6a:99:52:dd:40:90:27:c2:07:8d:19:ea:e6:
4e:b0:ce:84:c9:5f:9c:81:59:09:58:45:70:7b:bb:
88:61
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
0E:87:FD:B1:52:25:CD:FC:8D:07:6F:D9:D7:03:7F:DD:97:9B:D8:64
X509v3 Authority Key Identifier:
keyid:67:B5:B0:2D:C4:01:66:6E:E0:45:AB:90:CC:88:81:7F:E0:9D:70:6A
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/Z7WwLcQBZm7gRauQzIiBf-CdcGo.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Dof9sVIlzfyNB2_Z1wN_3Zeb2GQ.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/80/64a3de-812a-4ace-814d-b5d888adfd37/1/Z7WwLcQBZm7gRauQzIiBf-CdcGo.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
93.188.132.0/24
93.188.135.0/24
163.171.215.0-163.171.216.255
163.171.252.0/24
Signature Algorithm: sha256WithRSAEncryption
89:d4:ed:d1:9d:c8:13:81:84:6a:10:93:9d:b8:84:2a:05:ae:
1a:37:ce:ac:0a:54:f6:f1:ca:61:a3:58:7f:ef:28:0c:3f:25:
c0:fc:40:95:0a:f1:18:81:52:88:a8:96:83:ad:91:b8:39:bc:
ab:dc:c7:92:f7:3c:79:d5:c2:09:a2:bf:09:28:30:df:12:ae:
77:ba:c5:8c:22:a2:54:5b:70:5c:ab:75:d6:94:e7:09:c8:25:
4f:8d:98:35:ee:6c:95:2c:a0:d3:7a:86:40:2f:4e:10:db:bd:
9d:c7:78:ec:39:24:74:55:d6:d1:75:11:d4:6e:28:5d:b4:bc:
fe:a6:c9:4d:2c:f1:c8:f5:09:cc:69:39:b0:d9:ae:43:01:6c:
46:a2:3b:8b:4d:4c:53:c8:b2:8c:fe:bd:ac:23:3d:28:41:f8:
f3:bc:02:7a:85:c7:98:81:55:3c:3b:0d:ec:1b:e1:b0:54:6d:
16:0f:06:af:0a:93:36:3d:5d:71:b6:c2:e3:4c:58:58:8f:55:
d5:9e:15:2e:a8:b4:be:ef:9b:11:c4:79:27:5f:50:71:d0:65:
32:55:80:4e:fb:39:eb:65:08:95:f4:32:9f:f0:b0:d6:d4:46:
e9:aa:fc:30:a9:93:6e:8b:50:f0:e0:3a:79:cb:03:d4:39:b7:
a5:d9:6b:bc
-----BEGIN CERTIFICATE-----
MIIFFzCCA/+gAwIBAgISAYbaxzckz+mXS2+kmN53KO3LMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKDY3YjViMDJkYzQwMTY2NmVlMDQ1YWI5MGNjODg4MTdmZTA5
ZDcwNmEwHhcNMjMwMzEzMTE0MjE0WhcNMjQwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygwZTg3ZmRiMTUyMjVjZGZjOGQwNzZmZDlkNzAzN2ZkZDk3OWJkODY0MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiICJfYFz/EF2WJkXz3biP242tV5c
V/Rt6MynPFChrUNuNr8zGayQoDppBj8aJ/e+0dKGTaRai81NBRJ0YObwKi/FOH23
X6YGCDSrgusENpNgbERxYpP+1bs0neCs+/7LHeIqRRFcSqnEgJpqRAdXEtcbj9NG
Juj3a2K6c5ruhfHXp3CONTa10QzQDqUUZDsBUv9vPaO0XlHh+c5jxlrusqFfNrQq
rKAHvekqzZwaVyzTHtZDEV+n5YNksYJ7qR7EXUzz0CN0wyLYqoxxISfbEO8xv/oP
ovmgWjAGeZeFgRrK7WqZUt1AkCfCB40Z6uZOsM6EyV+cgVkJWEVwe7uIYQIDAQAB
o4ICIzCCAh8wHQYDVR0OBBYEFA6H/bFSJc38jQdv2dcDf92Xm9hkMB8GA1UdIwQY
MBaAFGe1sC3EAWZu4EWrkMyIgX/gnXBqMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvWjdXd0xjUUJabTdnUmF1UXpJaUJmLUNkY0dvLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC84MC82NGEzZGUtODEyYS00YWNlLTgxNGQt
YjVkODg4YWRmZDM3LzEvRG9mOXNWSWx6ZnlOQjJfWjF3Tl8zWmViMkdRLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC84MC82NGEzZGUtODEyYS00YWNlLTgxNGQtYjVkODg4YWRmZDM3
LzEvWjdXd0xjUUJabTdnUmF1UXpJaUJmLUNkY0dvLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMDkGCCsGAQUFBwEHAQH/BCowKDAmBAIAATAgAwQAXbyEAwQA
XbyHMAwDBACjq9cDBACjq9gDBACjq/wwDQYJKoZIhvcNAQELBQADggEBAInU7dGd
yBOBhGoQk524hCoFrho3zqwKVPbxymGjWH/vKAw/JcD8QJUK8RiBUoioloOtkbg5
vKvcx5L3PHnVwgmivwkoMN8Srne6xYwiolRbcFyrddaU5wnIJU+NmDXubJUsoNN6
hkAvThDbvZ3HeOw5JHRV1tF1EdRuKF20vP6myU0s8cj1CcxpObDZrkMBbEaiO4tN
TFPIsoz+vawjPShB+PO8AnqFx5iBVTw7Dewb4bBUbRYPBq8KkzY9XXG2wuNMWFiP
VdWeFS6otL7vmxHEeSdfUHHQZTJVgE77OetlCJX0Mp/wsNbURumq/DCpk26LUPDg
OnnLA9Q5t6XZa7w=
-----END CERTIFICATE-----
Generated at Thu Jun 6 19:20:27 2024 by rpki-client on console-ams.rpki-client.org